-
公开(公告)号:US08321686B2
公开(公告)日:2012-11-27
申请号:US11317862
申请日:2005-12-22
摘要: A secure memory card with encryption capabilities comprises various life cycle states that allow for testing of the hardware and software of the card in certain of the states. The testing mechanisms are disabled in certain other of the states thus closing potential back doors to secure data and cryptographic keys. Controlled availability and generation of the keys required for encryption and decryption of data is such that even if back doors are accessed that previously encrypted data is impossible to decrypt and thus worthless even if a back door is found and maliciously pried open.
摘要翻译: 具有加密功能的安全存储卡包括允许在某些状态下测试卡的硬件和软件的各种生命周期状态。 在某些其他状态下,测试机制被禁用,从而关闭潜在的后门以保护数据和加密密钥。 受控的可用性和数据加密和解密所需的密钥的生成使得即使后门被访问,即使发现后门被恶意撬开,以前加密的数据也不可能解密,因此也是无价值的。
-
公开(公告)号:US08108691B2
公开(公告)日:2012-01-31
申请号:US11317390
申请日:2005-12-22
IPC分类号: G06F21/00
CPC分类号: G11C29/1201 , G06F21/77 , G06F2221/2105 , G06F2221/2143 , G11C5/04
摘要: A secure memory card with encryption capabilities comprises various life cycle states that allow for testing of the hardware and software of the card in certain of the states. The testing mechanisms are disabled in certain other of the states thus closing potential back doors to secure data and cryptographic keys. Controlled availability and generation of the keys required for encryption and decryption of data is such that even if back doors are accessed that previously encrypted data is impossible to decrypt and thus worthless even if a back door is found and maliciously pried open.
摘要翻译: 具有加密功能的安全存储卡包括允许在某些状态下测试卡的硬件和软件的各种生命周期状态。 在某些其他状态下,测试机制被禁用,从而关闭潜在的后门以保护数据和加密密钥。 受控的可用性和数据加密和解密所需的密钥的生成使得即使后门被访问,即使发现后门被恶意撬开,以前加密的数据也不可能解密,因此也是无价值的。
-
公开(公告)号:US20060176068A1
公开(公告)日:2006-08-10
申请号:US11317390
申请日:2005-12-22
申请人: Micky Holtzman , Baruch Cohen , Ron Barzilai , Hagai Bar-El , David Deitcher
发明人: Micky Holtzman , Baruch Cohen , Ron Barzilai , Hagai Bar-El , David Deitcher
IPC分类号: G01R31/26
CPC分类号: G11C29/1201 , G06F21/77 , G06F2221/2105 , G06F2221/2143 , G11C5/04
摘要: A secure memory card with encryption capabilities comprises various life cycle states that allow for testing of the hardware and software of the card in certain of the states. The testing mechanisms are disabled in certain other of the states thus closing potential back doors to secure data and cryptographic keys. Controlled availability and generation of the keys required for encryption and decryption of data is such that even if back doors are accessed that previously encrypted data is impossible to decrypt and thus worthless even if a back door is found and maliciously pried open.
摘要翻译: 具有加密功能的安全存储卡包括允许在某些状态下测试卡的硬件和软件的各种生命周期状态。 在某些其他状态下,测试机制被禁用,从而关闭潜在的后门以保护数据和加密密钥。 受控的可用性和数据加密和解密所需的密钥的生成使得即使后门被访问,即使发现后门被恶意撬开,以前加密的数据也不可能解密,因此也是无价值的。
-
公开(公告)号:US20070188183A1
公开(公告)日:2007-08-16
申请号:US11317862
申请日:2005-12-22
申请人: Micky Holtzman , Baruch Cohen , Ron Barzilai , Hagai Bar-El , David Deitcher
发明人: Micky Holtzman , Baruch Cohen , Ron Barzilai , Hagai Bar-El , David Deitcher
IPC分类号: G01R31/02
摘要: A secure memory card with encryption capabilities comprises various life cycle states that allow for testing of the hardware and software of the card in certain of the states. The testing mechanisms are disabled in certain other of the states thus closing potential back doors to secure data and cryptographic keys. Controlled availability and generation of the keys required for encryption and decryption of data is such that even if back doors are accessed that previously encrypted data is impossible to decrypt and thus worthless even if a back door is found and maliciously pried open.
摘要翻译: 具有加密功能的安全存储卡包括允许在某些状态下测试卡的硬件和软件的各种生命周期状态。 在某些其他状态下,测试机制被禁用,从而关闭潜在的后门以保护数据和加密密钥。 受控的可用性和数据加密和解密所需的密钥的生成使得即使后门被访问,即使发现后门被恶意撬开,以前加密的数据也不可能解密,因此也是无价值的。
-
公开(公告)号:US08423788B2
公开(公告)日:2013-04-16
申请号:US11053273
申请日:2005-02-07
申请人: Micky Holtzman , Baruch Boris Cohen , Ron Barzilai
发明人: Micky Holtzman , Baruch Boris Cohen , Ron Barzilai
CPC分类号: G06F21/77 , G06F2221/2105 , G06F2221/2143 , H04L9/0897 , H04L2209/12 , H04L2209/26
摘要: A secure memory card with encryption capabilities comprises various life cycle states that allow for testing of the hardware and software of the card in certain of the states. The testing mechanisms are disabled in certain other of the states thus closing potential back doors to secure data and cryptographic keys. Controlled availability and generation of the keys required for encryption and decryption of data is such that even if back doors are accessed that previously encrypted data is impossible to decrypt and thus worthless even if a back door is found and maliciously pried open.
摘要翻译: 具有加密功能的安全存储卡包括允许在某些状态下测试卡的硬件和软件的各种生命周期状态。 在某些其他状态下,测试机制被禁用,从而关闭潜在的后门以保护数据和加密密钥。 受控的可用性和数据加密和解密所需的密钥的生成使得即使后门被访问,即使发现后门被恶意撬开,以前加密的数据也不可能解密,因此也是无价值的。
-
公开(公告)号:US08504849B2
公开(公告)日:2013-08-06
申请号:US11314411
申请日:2005-12-20
CPC分类号: G06F21/6218 , G06F21/78
摘要: Many storage devices are not aware of file systems while many computer host devices read and write data in the form of files. The host device provides a key reference or ID, while the memory system generates a key value in response which is associated with the key ID, which is used as the handle through which the memory retains complete and exclusive control over the generation and use of the key value for cryptographic processes, while the host retains control of files.
摘要翻译: 许多存储设备不知道文件系统,而许多计算机主机设备以文件的形式读取和写入数据。 主机设备提供密钥引用或ID,而存储器系统生成响应中的密钥值,该密钥值与密钥ID相关联,该密钥ID用作存储器保持完整的句柄,并且专用于控制生成和使用 密码过程的关键值,而主机保留对文件的控制。
-
7.发明申请公开(公告)号:US20100077214A1
公开(公告)日:2010-03-25
申请号:US12624036
申请日:2009-11-23
CPC分类号: G06F21/6218 , G06F2221/2113 , G06F2221/2141
摘要: The owner of proprietor interest is in a better position to control access to the encrypted content in the medium if the encryption-decryption key is stored in the medium itself and substantially inaccessible to external devices. Only those host devices with the proper credentials are able to access the key. An access policy may be stored which grants different permissions (e.g. to different authorized entities) for accessing data stored in the medium. A system incorporating a combination of the two above features is particularly advantageous. On the one hand, the content owner or proprietor has the ability to control access to the content by using keys that are substantially inaccessible to external devices and at the same time has the ability to grant different permissions for accessing content in the medium. Thus, even where external devices gain access, their access may still be subject to the different permissions set by the content owner or proprietor recorded in the storage medium. When implemented in a flash memory, the above features result in a particularly useful medium for content protection. Many storage devices are not aware of file systems while many computer host devices read and write data in the form of files. The host device provides a key reference or ID, while the storage device generates a key value in response which is associated with the key ID, which is used as the handle through which the memory retains complete and exclusive control over the generation and use of the key value for cryptographic processes, while the host retains control of files.
摘要翻译: 如果加密解密密钥存储在介质本身并且对外部设备基本不可访问,则所有者利益的所有者处于更好的位置以控制对介质中的加密内容的访问。 只有那些具有正确凭据的主机才能访问密钥。 可以存储访问策略,其授予不同的权限(例如,到不同的授权实体)以访问存储在介质中的数据。 结合上述两个特征的组合的系统是特别有利的。 一方面,内容所有者或所有者具有通过使用外部设备基本上不可访问的密钥来控制对内容的访问的能力,并且同时具有授予访问媒体中的内容的不同权限的能力。 因此,即使在外部设备获得访问的情况下,他们的访问仍然可能受到记录在存储介质中的内容所有者或所有者设置的不同权限。 当在闪存中实现时,上述特征导致用于内容保护的特别有用的介质。 许多存储设备不知道文件系统,而许多计算机主机设备以文件的形式读取和写入数据。 主机设备提供密钥参考或ID,而存储设备生成响应中的密钥值,该密钥值与密钥ID相关联,该密钥ID用作存储器保留完整的句柄,并且专用于控制生成和使用 密码过程的关键值,而主机保留对文件的控制。
-
公开(公告)号:US20060242068A1
公开(公告)日:2006-10-26
申请号:US11314411
申请日:2005-12-20
IPC分类号: G06Q99/00
CPC分类号: G06F21/6218 , G06F21/78
摘要: The owner of proprietor interest is in a better position to control access to the encrypted content in the medium if the encryption-decryption key is stored in the medium itself and substantially inaccessible to external devices. Only those host devices with the proper credentials are able to access the key. An access policy may be stored which grants different permissions (e.g. to different authorized entities) for accessing data stored in the medium. A system incorporating a combination of the two above features is particularly advantageous. On the one hand, the content owner or proprietor has the ability to control access to the content by using keys that are substantially inaccessible to external devices and at the same time has the ability to grant different permissions for accessing content in the medium. Thus, even where external devices gain access, their access may still be subject to the different permissions set by the content owner or proprietor recorded in the storage medium. When implemented in a flash memory, the above features result in a particularly useful medium for content protection. Many storage devices are not aware of file systems while many computer host devices read and write data in the form of files. The host device provides a key reference or ID, while the memory system generates a key value in response which is associated with the key ID, which is used as the handle through which the memory retains complete and exclusive control over the generation and use of the key value for cryptographic processes, while the host retains control of files.
摘要翻译: 如果加密解密密钥存储在介质本身并且对外部设备基本不可访问,则所有者利益的所有者处于更好的位置以控制对介质中的加密内容的访问。 只有那些具有正确凭据的主机才能访问密钥。 可以存储访问策略,其授予不同的权限(例如,到不同的授权实体)以访问存储在介质中的数据。 结合上述两个特征的组合的系统是特别有利的。 一方面,内容所有者或所有者具有通过使用外部设备基本上不可访问的密钥来控制对内容的访问的能力,并且同时具有授予访问媒体中的内容的不同权限的能力。 因此,即使在外部设备获得访问的情况下,他们的访问仍然可能受到记录在存储介质中的内容所有者或所有者设置的不同权限。 当在闪存中实现时,上述特征导致用于内容保护的特别有用的介质。 许多存储设备不知道文件系统,而许多计算机主机设备以文件的形式读取和写入数据。 主机设备提供密钥引用或ID,而存储器系统生成响应中的密钥值,该密钥值与密钥ID相关联,该密钥ID用作存储器保持完整的句柄,并且专用于控制生成和使用 密码过程的关键值,而主机保留对文件的控制。
-
公开(公告)号:US20070168292A1
公开(公告)日:2007-07-19
申请号:US11314410
申请日:2005-12-20
IPC分类号: G06Q99/00
CPC分类号: G06F21/6218 , G06F2221/2113 , G06F2221/2141
摘要: The owner of proprietor interest is in a better position to control access to the encrypted content in the medium if the encryption-decryption key is stored in the medium itself and substantially inaccessible to external devices. Only those host devices with the proper credentials are able to access the key. An access policy may be stored which grants different permissions (e.g. to different authorized entities) for accessing data stored in the medium. A system incorporating a combination of the two above features is particularly advantageous. On the one hand, the content owner or proprietor has the ability to control access to the content by using keys that are substantially inaccessible to external devices and at the same time has the ability to grant different permissions for accessing content in the medium. Thus, even where external devices gain access, their access may still be subject to the different permissions set by the content owner or proprietor recorded in the storage medium. When implemented in a flash memory, the above features result in a particularly useful medium for content protection. Many storage devices are not aware of file systems while many computer host devices read and write data in the form of files. The host device provides a key reference or ID, while the memory system generates a key value in response which is associated with the key ID, which is used as the handle through which the memory retains complete and exclusive control over the generation and use of the key value for cryptographic processes, while the host retains control of files.
摘要翻译: 如果加密解密密钥存储在介质本身并且对外部设备基本不可访问,则所有者利益的所有者处于更好的位置以控制对介质中的加密内容的访问。 只有那些具有正确凭据的主机才能访问密钥。 可以存储访问策略,其授予不同的权限(例如,到不同的授权实体)以访问存储在介质中的数据。 结合上述两个特征的组合的系统是特别有利的。 一方面,内容所有者或所有者具有通过使用外部设备基本上不可访问的密钥来控制对内容的访问的能力,并且同时具有授予访问媒体中的内容的不同权限的能力。 因此,即使在外部设备获得访问的情况下,他们的访问仍然可能受到记录在存储介质中的内容所有者或所有者设置的不同权限。 当在闪存中实现时,上述特征导致用于内容保护的特别有用的介质。 许多存储设备不知道文件系统,而许多计算机主机设备以文件的形式读取和写入数据。 主机设备提供密钥引用或ID,而存储器系统生成响应中的密钥值,该密钥值与密钥ID相关联,该密钥ID用作存储器保留完整的句柄,并且专用于控制生成和使用 密码过程的关键值,而主机保留对文件的控制。
-
公开(公告)号:US20060177064A1
公开(公告)日:2006-08-10
申请号:US11053273
申请日:2005-02-07
申请人: Micky Holtzman , Baruch Cohen , Ron Barzilai
发明人: Micky Holtzman , Baruch Cohen , Ron Barzilai
IPC分类号: H04L9/00
CPC分类号: G06F21/77 , G06F2221/2105 , G06F2221/2143 , H04L9/0897 , H04L2209/12 , H04L2209/26
摘要: A secure memory card with encryption capabilities comprises various life cycle states that allow for testing of the hardware and software of the card in certain of the states. The testing mechanisms are disabled in certain other of the states thus closing potential back doors to secure data and cryptographic keys. Controlled availability and generation of the keys required for encryption and decryption of data is such that even if back doors are accessed that previously encrypted data is impossible to decrypt and thus worthless even if a back door is found and maliciously pried open.
-
-
-
-
-
-
-
-
-
搜索结果
73 条记录 (耗时 0.035 秒)
